Fluid Attacks' scanners
Fluid Attacks offers several Docker images to perform security scans, which are described below.
These scanners can be seamlessly integrated into your development workflow, allowing you to perform security scans both locally and within your continuous integration and continuous delivery (CI/CD) pipeline.
Learn about the resource requirements for these tools.
Fluid Attacks' SAST scanner
fluidattacks/sast refers to the tool to perform SAST scans. (Available as a Docker container.)
For more information about SAST analysis, see what is SAST.
Fluid Attacks' SCA scanner
fluidattacks/sca refers to the tool to perform SCA scans. (Available as a Docker container.)
For more information about SCA analysis, see what is SCA.
Fluid Attacks' DAST scanner
fluidattacks/dast refers to the tool to perform DAST scans. (Available as a Docker container.)
For more information about DAST analysis, see what is DAST.
Fluid Attacks' APK security scanner
fluidattacks/apk refers to the tool to perform APK security scans. (Available as a Docker container.)
This scanner decompiles and searches vulnerabilities on APK files.